Advanced analytics

Active and predictive defense that anticipates and thwarts potential threats

Threats to federal agency networks and information assets involve sophisticated deception and are constantly evolving. To achieve an agile and resilient security posture, leading agencies not only defend their networks, they also anticipate threats and deploy countermeasures in advance of potential attacks.

CGI applies expertise honed in complex, high speed, high stakes military and intelligence environments to deliver active and predictive defense using advanced analytics. We combine digital network intelligence and all-source fusion to provide clients actionable insight into potential threats and implement security strategies that keep clients multiple steps ahead of cyber attackers.

  • Analyze attacks against client networks and decipher the tactics, techniques and procedures (TTPs) used by attackers
  • Conduct intelligence prep to assess cyber threats, most probable attacker, dangerous courses of action and TTPs used by cyber threat actors
  • Collect, assess and report threat vectors from cyber-event logging devices, firewalls and System and Network Security (SNS) Intrusion Detection Systems (IDS), analysis of agency hardware and software vulnerabilities, and awareness of specific threats based on incidents on client networks
  • Fuse threat vectors using open public data sources and client-provided data sources—including both structured and unstructured data—to determine current and potential cyber threats to client computer networks
  • Analyze threat fusion assessments, remove false positives and identify the most serious and imminent threats
  • Submit findings to agency managers in formal reports, network mapping illustrations, and daily and weekly operational cyber threat briefs
  • Develop and recommend courses of action to help detect, deter and respond to identified threats to client systems and networks including IDS signature additions and IP block requests
  • Manage skilled, cleared teams that execute predictive defensive measures via computer network operations, computer and network security, and process management in classified and unclassified networking environments
  • Support the client in authorized exchanges of information on cyber attack activities with the client’s mission partners to aid in correlation of events and achieve “one team, one fight” to protect client computer networks
  • Periodically review reporting processes and capabilities and make recommendations for improvements based on new or updated government and civilian methodologies and best practices
  • Review manpower requirements and resources and make recommendations on how to best structure schedules to maximize coverage
  • Participate in cyber-intelligence planning and process-improvement activities to help clients make strategic and tactical improvements to cyber defense
  • Provide security and network engineering expertise to support the client’s operational readiness protection objectives, including systems and network engineering, executive information sharing and reporting, and industry-recognized certification and training on tools
  • Stay abreast of new network threat tactics by attending ethical hacking and malware analysis training, and sharing new skills with clients via CGI’s cyber academy

Through our security innovation and expertise, CGI delivers federal cybersecurity solutions to military, intelligence, civilian and commercial clients; however, details are not publicly disclosed without approval. For a confidential discussion of agency-specific security challenges and comparable CGI client engagements, please contact us.